onboard_aws_prisma

AWS Onboarding tool for Prisma Cloud

Simple one-liner tool to add account to Prisma Cloud

May use export.sh for environment variables or lambda

Or use available commandline arguments

  -h, --help            show this help message and exit
  -u USERNAME, --username USERNAME
                        Prisma Cloud username or access key id
  -p PASSWORD, --password PASSWORD
                        Prisma Cloud password or secret key
  -c CUSTOMERNAME, --customername CUSTOMERNAME
                        Prisma Cloud tenant name
  -a ACCOUNTNAME, --accountname ACCOUNTNAME
                        Account name to be used for AWS account within Prisma
                        Cloud
  -g ACCOUNTGROUP, --accountgroup ACCOUNTGROUP
                        Prisma Cloud account group to assign to this account
  -e EXTERNALID, --externalid EXTERNALID
                        External ID that is configured for the AWS account
                        trust relationship
  -r ROLENAME, --rolename ROLENAME
                        Name of the role added for Prisma Cloud access eg,
                        PrismaReadOnlyRole
  -t TENANT, --tenant TENANT
                        select Prisma Cloud tenant (app, app2, app3, app4,
                        app.eu, app.anz, app.gov
  -n, --updateacct      This flag will cause an existing account to be updated
                        rather than created

Example

-u some@email.com -p foo -c Widgets Inc -a Widget Prod -g "Default Account Group" -e AWSEXTERNALID -r PrismaReadOnlyRole --tenant app

Developer Sites

Social


Copyright © 2021 Palo Alto Networks, Inc. All rights reserved.